From Code to Kubernetes

About Us
Art Richards
CTO - truckin.io

About Me
Daniel Oliveira
Devops Engineer
danieloliv79
danieloliveira079
daniel@truckin.io

● Scenario and Architecture
● Technologies
● Challenges
● Results
● Foundations
● Infrastructure as Code
● Configuration Management
● Building and Deployments
● Application Debugging using Weavescope
● Demo - From code to Kubernetes
● Future
● QA

One man's operations team
Priorities vs Resources

10+
Non-production deployments per day

8 Projects
Frontend, Backend API, Android
Development, Test, Staging, Demo and Production

Weekly
Production deployments
(mobile, frontend and backend)

● CI/CD Pipeline
● Isolated Environments (Dev, Test, Demo, Staging, Production)
● Unified orchestrator for builds and deployments processes
● Integrations
● Easy application debugging
● Automation

IaaS
Cloud Provider
Resources
Network, Instances, IAM, Disk, Registry,
Kubernetes Cluster
Software, Packages and Configs
Salt Master, Salt Minion, Docker, Postgresql
and Elasticsearch
ProvisioningOrder
Desired State
Minions, API, Reactor, Integrations

Google Cloud Platform
https://cloud.google.com

Terraform by Hashicorp
https://www.terraform.io

Basic network resources configuration file
variable
● Command line tool (apply, plan, destroy)
● Multiples Providers
● Config based resources
● Usage of Variables
● Dependencies Graph
● Execution Plan
● Resource Creation in Parallel
● Multiples Provisioners
● Detailed Output
dependency
Terraform output

Configure 'Em All
Network, Firewall, Subnetworks, Instances,
Buckets, Disks, Kubernetes Cluster, Services
Accounts and IAM

SaltStack Open Source
https://docs.saltstack.com/en/latest/
Master
MinionOperator
Minion
Postgresql
Minion
Builder
MinionElastic
G@roles:builder and G@environment:test

Selectors
Master
Minion
Builder
Executed imperatively via command line or reactively via Salt Reactor.
salt cli selector command

Salt Pillars
"Offer global values that can be distributed to minions"

Salt States
"The SLS is a representation of the state in which a system should be in, and is
set up to contain this data in a simple format."

state ID
modulename.command
arguments

Using defined pillars within states
● Introducing the map.jinja file
● Passing pillars values when compiling states

Output to MinionParse + Merge
SaltStack Compilation Process
+ =Pillars
dictionaries
States
jinja2
Low Data
Parse

Gitfs
"The gitfs backend allows Salt to serve files from git repositories."

Desired State
● 8 VMs
○ Salt Master
○ Operator
○ Builder
○ Postgresql
○ Elasticsearch
○ 3 Kubernetes nodes
● 2 Persistent Data Disks: 500GB attached to PG and ELS
● 1 Kubernetes Cluster
● Network
○ Required Firewall Rules
○ 2 Subnets
● 2 IAM/Service Accounts: Pull/Push Docker Registry

Complete Cloud Provision Flow
Network
Firewall, Subnets, Static IPs,
...
Instances
Salt Master, Salt Minion,
Postgresql, Elasticsearch, Builder,
Operator
Kubernetes
Cluster
Nodes, Firewall Rules,
K8S Master and Workers
● $ terraform apply
Salt states are applied just after an
instance is created, based on its
"role" specified in the grains config
Core resources are
created during this
phase
Creates the initial
cluster state based on
the number of nodes
specified

Salt API
https
https
ssh
Builder
Operator
runners
reactor
Event Hub
https

Kubernetes Objects
"Kubernetes Objects are persistent entities in the Kubernetes system.
Kubernetes uses these entities to represent the state of your cluster."

Kubernetes objects
● Abstracts: deployments, services, replica sets, ingress, ...
● Generated on the fly by Salt using templates
● Final .yaml file compiled including pillars and arguments
● $ kubectl apply -f mysite-development.yaml
● Garbage collector

Builder
1 2
3
4
5
6
7
8
Code to Image Flow
Registry
Reactor
push
state.apply
notify
notify
notify
push notify

Operator
Kubernetes Deployment Flow
Registry
Reactor
(Post Build)
Pullkubectlstate.apply1
2 4
notify
3
5
notify
6

Application Debugging
https://www.weave.works/products/weave-scope/

Demo
Live from code to Kubernetes!

Future
What must be improved?
● Error Handling
● Credentials Management
● Logging and Monitoring
● On Demand Environments
● Terraform File Refactoring
● Implement Production
● Rollout Deployments
● Postgresql Cluster
● Elasticsearch Cluster
● ...

Wrap up
What I've seen so far?
● Automated provision
● Event driven environment
● Fast delivery cycle
● Isolated environments
● Application Debugging
● ChatOps

Doesn't have to be perfect from day 0!

Pick up the right people
"When you get into one of these groups,
there's only a couple of ways you can
get out: one is death, the other is mental
institutions..." - Devops Engineer testimonial

Links
Saltstack - https://saltstack.com
Salt States - https://docs.saltstack.com/en/latest/topics/tutorials/starting_states.html
Salt Pillars - https://docs.saltstack.com/en/latest/topics/pillar/
Terraform - https://www.terraform.io/intro/index.html
Weavescope - https://www.weave.works/products/weave-scope
Kubernetesio - http://kubernetes.io
Jenkins CI - https://jenkins.io
Docker - https://docker.com
Google Cloud Platform - cloud.google.com
GCP Calculator - https://cloud.google.com/products/calculator/

From Code to Kubernetes

More Related Content

What's hot

Viewers also liked

Similar to From Code to Kubernetes

Recently uploaded

From Code to Kubernetes